CVE-2016-0359 in WebSphere Application Serverinformation

Résumé

par MITRE

CRLF injection vulnerability in IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.43, 8.0 before 8.0.0.13, 8.5 Full before 8.5.5.10, and 8.5 Liberty before Liberty Fix Pack 16.0.0.2 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a crafted URL.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Réserver

08/12/2015

Divulgation

03/07/2016

Modérer

accepté

Entrée

VDB-88333

CPE

prêt

EPSS

0.00312

KEV

non

Activités

très faible

Secteur

Hospital, Insurance, ...

Sources

MITREhttps://www.cve.org/CVERecord?id=CVE-2016-0359
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2016-0359
CVE Detailshttps://www.cvedetails.com/cve/CVE-2016-0359/

PrécédentAperçuSuivant

Might our Artificial Intelligence support you?

Check our Alexa App!